Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C9A46EA13DF11F08FEED251762E951A.roa
File: 7C9A46EA13DF11F08FEED251762E951A.roa (raw, json)
Hash identifier: 4txZ31lPafO/qEqsuKyO2+4Z6OYHgS9hsHjsmKzN5nY=
Subject key identifier: 4B:AC:74:D8:9E:DB:BA:0A:27:18:F4:6B:47:29:C6:41:39:C3:68:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01781F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C9A46EA13DF11F08FEED251762E951A.roa
Signing time: Mon 07 Apr 2025 18:38:24 +0000
ROA not before: Mon 07 Apr 2025 18:38:19 +0000
ROA not after: Thu 15 May 2025 18:38:19 +0000
asID: 23470
IP address blocks: 154.194.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96287 (0x1781f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 18:38:19 2025 GMT
Not After : May 15 18:38:19 2025 GMT
Subject: CN=67f41ba0-3903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:84:ba:23:8b:19:e4:59:c9:0c:c3:51:55:
72:f4:9d:2f:6f:32:cc:61:ce:b8:d2:2b:e0:54:20:
5d:81:2f:4c:80:03:09:2e:42:c9:59:5d:f2:eb:6f:
12:65:84:4a:60:83:50:f3:56:be:1c:41:1a:7a:2d:
6b:2e:91:0f:cf:84:8a:aa:bf:b6:d5:d0:cf:26:4a:
43:a6:c9:59:2f:a8:e7:6d:9e:00:58:06:ca:ba:8a:
0a:ea:b3:56:60:66:0a:e6:f3:16:5f:a5:f0:86:bc:
9f:dd:20:6f:a0:6c:76:b2:26:d8:59:d4:c3:36:e3:
3e:0b:a1:bf:76:50:f6:c6:6a:44:ff:3c:bf:2b:8a:
57:d6:17:27:02:35:af:b5:f3:98:b1:5c:e8:df:d7:
2c:50:25:62:6e:fb:87:ea:47:6e:47:68:ce:a9:59:
dc:cc:48:ad:e5:b6:90:d6:ab:61:8d:e8:c1:b0:04:
ea:cc:b1:65:dc:23:08:74:fe:d6:e1:1e:ad:fd:e5:
1d:56:56:6b:2c:9c:c0:b2:94:26:7a:dd:e5:eb:c3:
69:90:96:b4:fc:17:8c:af:9b:c5:d1:00:39:81:2f:
48:7e:87:13:9d:77:a9:1e:53:04:31:32:83:ee:f9:
69:7d:d6:e5:13:46:da:7d:4e:aa:48:bd:f5:da:ab:
d2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AC:74:D8:9E:DB:BA:0A:27:18:F4:6B:47:29:C6:41:39:C3:68:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C9A46EA13DF11F08FEED251762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.57.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:2b:7b:bd:6a:17:6f:6f:39:6e:e2:85:46:88:79:0d:d1:68:
16:0c:a3:d2:0d:05:96:63:e1:ec:b6:f7:19:f5:c4:c7:32:ec:
2d:ae:40:d8:1d:d3:36:11:5b:da:98:51:03:6c:1b:c4:54:69:
eb:fa:1f:9f:94:36:0a:e3:3e:0d:40:5d:33:4d:b8:02:8e:00:
8d:bb:29:ca:65:bd:42:32:7d:ed:08:54:25:05:56:e8:aa:3e:
50:c4:60:55:8a:e7:9a:10:40:5f:e2:eb:c1:b4:b6:9e:7f:85:
45:25:10:24:18:ae:4c:5b:07:97:5e:c9:2d:7f:6b:52:a3:c2:
b9:e6:70:32:eb:8e:25:b7:76:98:99:57:40:1c:c8:d9:ca:62:
72:3d:54:ae:54:03:68:a0:21:2c:25:02:6d:82:af:3e:b6:dc:
d1:f1:09:50:c0:b4:53:88:b4:74:a9:f1:e3:42:eb:c5:12:88:
47:bd:a9:ad:50:b4:2f:a7:9d:9d:72:f7:d3:c7:4c:4a:14:6d:
18:07:1d:af:03:33:ef:d0:fe:8d:98:3f:cb:a3:e8:7a:50:90:
8d:bf:ef:7d:ed:a6:fa:63:f3:b5:d2:d2:9b:87:56:06:f6:74:
10:8d:48:5a:8b:ae:3a:9b:6c:62:28:ae:d4:83:10:28:c2:ce:
56:04:2a:16
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXgfMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDA3MTgzODE5WhcNMjUwNTE1MTgzODE5WjAYMRYw
FAYDVQQDEw02N2Y0MWJhMC0zOTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwkeEuiOLGeRZyQzDUVVy9J0vbzLMYc640ivgVCBdgS9MgAMJLkLJWV3y
628SZYRKYINQ81a+HEEaei1rLpEPz4SKqr+21dDPJkpDpslZL6jnbZ4AWAbKuooK
6rNWYGYK5vMWX6Xwhryf3SBvoGx2sibYWdTDNuM+C6G/dlD2xmpE/zy/K4pX1hcn
AjWvtfOYsVzo39csUCVibvuH6kduR2jOqVnczEit5baQ1qthjejBsATqzLFl3CMI
dP7W4R6t/eUdVlZrLJzAspQmet3l68NpkJa0/BeMr5vF0QA5gS9IfocTnXepHlME
MTKD7vlpfdblE0bafU6qSL312qvSBwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEus
dNie27oKJxj0a0cpxkE5w2h7MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QzlBNDZFQTEzREYxMUYwOEZFRUQyNTE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsI5MA0GCSqGSIb3DQEB
CwUAA4IBAQC/K3u9ahdvbzlu4oVGiHkN0WgWDKPSDQWWY+HstvcZ9cTHMuwtrkDY
HdM2EVvamFEDbBvEVGnr+h+flDYK4z4NQF0zTbgCjgCNuynKZb1CMn3tCFQlBVbo
qj5QxGBViueaEEBf4uvBtLaef4VFJRAkGK5MWweXXsktf2tSo8K55nAy644lt3aY
mVdAHMjZymJyPVSuVANooCEsJQJtgq8+ttzR8QlQwLRTiLR0qfHjQuvFEohHvamt
ULQvp52dcvfTx0xKFG0YBx2vAzPv0P6NmD/Lo+h6UJCNv+997ab6Y/O10tKbh1YG
9nQQjUhai646m2xiKK7UgxAows5WBCoW
-----END CERTIFICATE-----
Generated at Thu Apr 24 18:04:02 2025 by rpki-client on console.sobornost.net